Thanks for your pull request. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

📝 Please follow instructions at https://git.k8s.io/community/CLA.md#the-contributor-license-agreement to sign the CLA.

It may take a couple minutes for the CLA signature to be fully registered; after that, please reply here with a new comment and we'll verify. Thanks.

• If you've already signed a CLA, it's possible we don't have your GitHub username or you're using a different email address. Check your existing CLA data and verify that your email is set on your git commits.
• If you signed the CLA as a corporation, please sign in with your organization's credentials at https://identity.linuxfoundation.org/projects/cncf to be authorized.
• If you have done the above and are still having issues with the CLA being reported as unsigned, please log a ticket with the Linux Foundation Helpdesk: https://support.linuxfoundation.org/
• Should you encounter any issues with the Linux Foundation Helpdesk, send a message to the backup e-mail support address at: login-issues@jira.linuxfoundation.org

Welcome @inteon!

It looks like this is your first PR to kubernetes-sigs/yaml 🎉. Please refer to our pull request process documentation to help your PR have a smooth ride to approval.

You will be prompted by a bot to use commands during the review process. Do not be afraid to follow the prompts! It is okay to experiment. Here is the bot commands documentation.

You can also check if kubernetes-sigs/yaml has its own contribution guidelines.

You may want to refer to our testing guide if you run into trouble with your tests not passing.

If you are having difficulty getting your pull request seen, please follow the recommended escalation practices. Also, for tips and tricks in the contribution process you may want to read the Kubernetes contributor cheat sheet. We want to make sure your contribution gets all the attention it needs!

Thank you, and welcome to Kubernetes. 😃

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: inteon
To complete the pull request process, please assign dims after the PR has been reviewed.
You can assign the PR to them by writing /assign @dims in a comment when ready.

The full list of commands accepted by this bot can be found here.

I think @liggitt is a better person to ask.

Discussing with @inteon on the Kubernetes slack now (https://kubernetes.slack.com/archives/C0EG7JC6T/p1631778930193700?thread_ts=1631728530.180800&cid=C0EG7JC6T); there is a need to redesign this library more or less completely in a spec-driven way, i.e. write a KEP for what a v2 of this library should look like.

Furthermore, to be consistent with the k8s API machinery, we also need to depend on the same JSON logic from here https://github.com/kubernetes/apimachinery/blob/master/pkg/runtime/serializer/json/json.go#L113-L184, and hence I think creating a sigs.k8s.io/json encoding/json drop-in would be a prerequisite for a v2 of this library.

This again (sigs.k8s.io/json) would need its own KEP, due to a multitude of needs from kubernetes/enhancements#2082, the defaulting KEP, and kubernetes/enhancements#2970, the "strict" validation KEP (work in kubernetes/kubernetes#104433).

I have listed some issues needing resolution in https://github.com/luxas/deklarative/issues (a PoC/MVP repo for this kind of work), have some PoC work of what sigs.k8s.io/yaml v2 could look like in luxas/deklarative#8, and have identified some upstream issues that need fixing in https://github.com/json-iterator/go/issues. But there's more to this.

From the top of my head, these are the specifications:

• sigs.k8s.io/json
  • Round-trip all integers correctly, to not precision above 2^53 (we use a json-iterator extension for this in k8s.io/apimachinery)
  • Provide a mode to error/warn for duplicate (Error for duplicate fields json-iterator/go#575) and unknown fields (k8s.io/apimachinery supports unknown fields, but not duplicate in json-only mode, which affects WIP: Strict schema validation for POST and PUT kubernetes/kubernetes#104433). Note that duplicate keys are forbidden in YAML, anyways, so duplicate keys should probably error by default, and not merge using this pretty non-user-friendly behavior (maps merge, scalars replace: Make json-iter decoder able to recognize duplicate fields luxas/deklarative#5, example: https://play.golang.org/p/CkCMdoGXc07)
  • Be case sensitive (encoding/json is not, already enforced in k8s.io/apimachinery)
  • Return struct errors (wrong line number in yaml syntax error message kubernetes/kubernetes#104607 (comment))
  • Actually omit encoding empty structs marked omitempty (this doesn't work in any json library so far, but could probably be made an extension to json iterator)
  • Encode json.RawMessage correctly with indentation
  • Make sure the encoder/decoder supports "framing", like we depend on for e.g. Kube API server watches. This should more or less "just work", but needs testing.
• sigs.k8s.io/yaml
  • Use YAML 1.2 (e.g. no implicit typing)
  • Most of the specifications of the above json package; hence use sigs.k8s.io/json for marshalling and unmarshalling Go types, to always be consistent with the JSON logic.
  • Disallow all YAML features not allowed in JSON, or convert (?), e.g. non-string keys.
  • Allow configurable sequence indentation level (problem in kyaml, ref yaml.v3 fork maintenance story kustomize#4033), and auto-detection.
  • Return struct errors
  • Make sure "framing" is supported, such that a stream of YAML documents can be split up individually

We need to make sure we agree on a specific subset of the YAML + JSON union that is considered "supported" for Kubernetes, and what is out of scope.

kubernetes/kubernetes#105030 Is relevant to the json bits. It's more driven by an immediate desire to drop json-iterator because of correctness and compatibility reasons.

Oh, wow, I had no idea that was going on, thanks for the heads up @liggitt, will definitely take a look 👍!

That PR is heavily oriented toward:

1. Replacing existing use of json-iterator (we only have two configurations we use, case-sensitive and strict)
2. Avoiding exposing additional API surface area
3. Using the standard library code as much as possible for compatibility and correctness reasons
4. Limiting additions to things we think we can reasonably upstream, and eventually collapse back onto the standard decoder

A heads-up that https://github.com/kubernetes-sigs/json is now available to use (thanks @liggitt!!)

It satisfies the above criteria as it:

• Is case-sensitive
• Preserves numbers
• Collects/returns strict errors completely independently (more like "warnings") from the "normal" decode errors
• Allows reporting duplicate field / unknown field policy invalidations
• Supports returning the invalid byte offset for syntax errors; which allows a higher-level library (maybe like this one to report the surrounding context)

Meanwhile, k8s has moved on to using json.Marshal (kubernetes/kubernetes#105466), not json-iter, to fix the json.RawMessage issue described. That is just a note, no action item needed, as this library already uses json.Marshal, good that we now have consistency.

@inteon would you be up for rebasing this PR to use this new json library?

/uncc

@luxas I updated the PR, so it now uses the new json library!
Furthermore, I changed the API to match the json library API, eg. added an option to disallow duplicate fields (both DisallowUnknownFields and DisallowDuplicateFields should be supported).
Please let me know what you think, and feel free to suggest changes or add some extra testcases.

@liggitt thanks for the first review, I made some additional changes based on your feedback. Next step will be to split this PR into multiple smaller PRs. Feel free to provide additional feedback. I'll let you know once I've split this PR into multiple smaller PRs, but this might take some time as I'm quite busy right now.

cc @laverya @fejta @sttts @neolit123 @dims from #26.

As pointed out by @inteon in #26 (comment):

gnostic now also uses yaml.v3: google/gnostic#194

it hasn't been released yet, however, I guess it'll come in a 0.6.x

@luxas thanks for the review, I tried to fix all of your comments & rebased the PR on #65.
Please let me know if there is still something that should be changed.

Thanks for the review; looks like we're getting close to the "ideal" solution.
I think the biggest challenge that is still pending is the "sequence indentation style" and planning how to get this merged (maybe in different stages).

PS: the reason I removed the tests for go-versions below 1.17, is because sigs.k8s.io/json only supports that version

@inteon: PR needs rebase.

The Kubernetes project currently lacks enough contributors to adequately respond to all issues and PRs.

This bot triages issues and PRs according to the following rules:

• After 90d of inactivity, lifecycle/stale is applied
• After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
• After 30d of inactivity since lifecycle/rotten was applied, the issue is closed

You can:

• Mark this issue or PR as fresh with /remove-lifecycle stale
• Mark this issue or PR as rotten with /lifecycle rotten
• Close this issue or PR with /close
• Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle stale

/remove-lifecycle stale

Any updates on this? My team needs a fix for #58 :(

@inteon doesn't look like there is a possibility of this landing given the time and the situation has not changed ( #61 (comment) )